meituan-coupon

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The skill requires extracting and passing sensitive tokens (user_token / device_token) into local script invocations (as command-line arguments and via script outputs), so the agent must handle secrets internally and could expose them verbatim in generated commands despite rules forbidding plain‑text display.